{
  "threat_severity" : "Low",
  "public_date" : "2024-03-01T00:00:00Z",
  "bugzilla" : {
    "description" : "kernel: RDMA/core: Prevent divide-by-zero error triggered by the user",
    "id" : "2267533",
    "url" : "https://bugzilla.redhat.com/show_bug.cgi?id=2267533"
  },
  "cvss3" : {
    "cvss3_base_score" : "4.4",
    "cvss3_scoring_vector" : "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
    "status" : "verified"
  },
  "cwe" : "CWE-369",
  "details" : [ "In the Linux kernel, the following vulnerability has been resolved:\nRDMA/core: Prevent divide-by-zero error triggered by the user\nThe user_entry_size is supplied by the user and later used as a\ndenominator to calculate number of entries. The zero supplied by the user\nwill trigger the following divide-by-zero error:\ndivide error: 0000 [#1] SMP KASAN PTI\nCPU: 4 PID: 497 Comm: c_repro Not tainted 5.13.0-rc1+ #281\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.13.0-0-gf21b5a4aeb02-prebuilt.qemu.org 04/01/2014\nRIP: 0010:ib_uverbs_handler_UVERBS_METHOD_QUERY_GID_TABLE+0x1b1/0x510\nCode: 87 59 03 00 00 e8 9f ab 1e ff 48 8d bd a8 00 00 00 e8 d3 70 41 ff 44 0f b7 b5 a8 00 00 00 e8 86 ab 1e ff 31 d2 4c 89 f0 31 ff <49> f7 f5 48 89 d6 48 89 54 24 10 48 89 04 24 e8 1b ad 1e ff 48 8b\nRSP: 0018:ffff88810416f828 EFLAGS: 00010246\nRAX: 0000000000000008 RBX: 1ffff1102082df09 RCX: ffffffff82183f3d\nRDX: 0000000000000000 RSI: ffff888105f2da00 RDI: 0000000000000000\nRBP: ffff88810416fa98 R08: 0000000000000001 R09: ffffed102082df5f\nR10: ffff88810416faf7 R11: ffffed102082df5e R12: 0000000000000000\nR13: 0000000000000000 R14: 0000000000000008 R15: ffff88810416faf0\nFS:  00007f5715efa740(0000) GS:ffff88811a700000(0000) knlGS:0000000000000000\nCS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000000020000840 CR3: 000000010c2e0001 CR4: 0000000000370ea0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n? ib_uverbs_handler_UVERBS_METHOD_INFO_HANDLES+0x4b0/0x4b0\nib_uverbs_cmd_verbs+0x1546/0x1940\nib_uverbs_ioctl+0x186/0x240\n__x64_sys_ioctl+0x38a/0x1220\ndo_syscall_64+0x3f/0x80\nentry_SYSCALL_64_after_hwframe+0x44/0xae" ],
  "affected_release" : [ {
    "product_name" : "Red Hat Enterprise Linux 8",
    "release_date" : "2021-11-09T00:00:00Z",
    "advisory" : "RHSA-2021:4356",
    "cpe" : "cpe:/o:redhat:enterprise_linux:8",
    "package" : "kernel-0:4.18.0-348.el8"
  } ],
  "package_state" : [ {
    "product_name" : "Red Hat Enterprise Linux 6",
    "fix_state" : "Out of support scope",
    "package_name" : "kernel",
    "cpe" : "cpe:/o:redhat:enterprise_linux:6"
  }, {
    "product_name" : "Red Hat Enterprise Linux 7",
    "fix_state" : "Out of support scope",
    "package_name" : "kernel",
    "cpe" : "cpe:/o:redhat:enterprise_linux:7"
  }, {
    "product_name" : "Red Hat Enterprise Linux 7",
    "fix_state" : "Out of support scope",
    "package_name" : "kernel-rt",
    "cpe" : "cpe:/o:redhat:enterprise_linux:7"
  }, {
    "product_name" : "Red Hat Enterprise Linux 8",
    "fix_state" : "Affected",
    "package_name" : "kernel-rt",
    "cpe" : "cpe:/o:redhat:enterprise_linux:8"
  }, {
    "product_name" : "Red Hat Enterprise Linux 9",
    "fix_state" : "Not affected",
    "package_name" : "kernel",
    "cpe" : "cpe:/o:redhat:enterprise_linux:9"
  }, {
    "product_name" : "Red Hat Enterprise Linux 9",
    "fix_state" : "Not affected",
    "package_name" : "kernel-rt",
    "cpe" : "cpe:/o:redhat:enterprise_linux:9"
  } ],
  "references" : [ "https://www.cve.org/CVERecord?id=CVE-2021-47080\nhttps://nvd.nist.gov/vuln/detail/CVE-2021-47080\nhttps://lore.kernel.org/linux-cve-announce/2024030142-CVE-2021-47080-eb20@gregkh/T/#u" ],
  "name" : "CVE-2021-47080",
  "csaw" : false
}